Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/iez6e9xAPsxsRfUUF_LQb177a8w.roa
File: iez6e9xAPsxsRfUUF_LQb177a8w.roa (raw, json)
Hash identifier: GRJAlUkkIuckIXpnymv05U/hosf5wwoWRWb0xxACoZM=
Subject key identifier: 89:EC:FA:7B:DC:40:3E:CC:6C:45:F5:14:17:F2:D0:6F:5E:FB:6B:CC
Certificate issuer: /CN=ee0739d0528dcb4fce578d11f7ec34b0e37452cf
Certificate serial: 018C231F9617626E51E8E17C6AD155933DBA
Authority key identifier: EE:07:39:D0:52:8D:CB:4F:CE:57:8D:11:F7:EC:34:B0:E3:74:52:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7gc50FKNy0_OV40R9-w0sON0Us8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/iez6e9xAPsxsRfUUF_LQb177a8w.roa
Signing time: Fri 01 Dec 2023 02:05:21 +0000
ROA not before: Fri 01 Dec 2023 02:05:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 2001:67c:17fc::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:23:1f:96:17:62:6e:51:e8:e1:7c:6a:d1:55:93:3d:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee0739d0528dcb4fce578d11f7ec34b0e37452cf
Validity
Not Before: Dec 1 02:05:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89ecfa7bdc403ecc6c45f51417f2d06f5efb6bcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3d:44:b4:1f:aa:4f:a2:1b:0b:7a:0d:79:ad:
04:bf:53:f7:ed:28:a0:61:64:5b:8b:b7:51:a1:75:
da:79:b2:c7:d9:26:3a:1a:77:b8:cd:f0:2a:01:40:
13:5f:ab:55:ef:21:13:10:73:92:54:75:39:bd:38:
22:bf:61:7c:0f:20:ef:8f:9c:66:31:db:fa:2d:7a:
94:a4:a1:1e:9a:f9:b3:28:41:72:9a:6f:25:d8:f4:
71:8c:72:f6:e9:ec:81:80:31:f6:ab:e9:61:a6:c6:
99:79:b8:29:05:f3:a9:75:2c:9d:78:13:02:bd:65:
5c:6b:83:4f:de:39:ab:ab:6e:5d:6c:4e:d3:ea:38:
dd:3e:21:cb:b0:1e:87:bb:09:1d:40:e3:0f:1b:5a:
32:7c:7b:fd:8f:eb:a4:d1:6b:9e:1f:15:9a:dd:5b:
15:d4:1c:93:fb:d0:c4:1f:fe:b3:d7:9e:5c:36:c3:
77:b2:a9:bd:d0:6a:22:84:fd:ec:53:53:7d:a6:9c:
3c:86:7e:57:c8:8d:f1:bc:7f:3b:50:e9:72:e6:d6:
ff:c6:31:ee:35:24:05:7f:55:90:51:1f:4a:f9:39:
f6:04:4e:e8:e6:d8:29:15:7b:2d:d4:60:4a:b1:49:
97:58:83:9b:aa:02:7c:b9:2f:6f:ab:35:37:1c:19:
cf:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:EC:FA:7B:DC:40:3E:CC:6C:45:F5:14:17:F2:D0:6F:5E:FB:6B:CC
X509v3 Authority Key Identifier:
keyid:EE:07:39:D0:52:8D:CB:4F:CE:57:8D:11:F7:EC:34:B0:E3:74:52:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7gc50FKNy0_OV40R9-w0sON0Us8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/iez6e9xAPsxsRfUUF_LQb177a8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/7gc50FKNy0_OV40R9-w0sON0Us8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:17fc::/48
Signature Algorithm: sha256WithRSAEncryption
33:b0:a3:e5:c8:7d:b2:18:db:49:cb:1b:4c:67:25:6b:e0:54:
73:5a:cc:53:fd:d4:93:3f:2e:86:79:8b:d1:4b:36:03:ef:59:
28:9a:5d:af:dc:25:58:bf:07:3d:2b:ad:5c:01:cf:ef:9f:39:
56:97:92:ee:58:a9:db:ca:0e:f2:9f:14:98:6b:9e:ed:bb:37:
5e:14:a9:d5:7d:d4:73:b7:e2:77:bb:3b:e7:31:d1:da:21:92:
3b:21:c7:43:2c:d0:e1:9e:f2:1e:d4:7c:eb:34:15:9e:bb:f3:
83:17:53:86:90:22:85:98:56:58:75:80:e9:c4:6c:42:3f:7b:
2a:e0:c0:37:84:4e:da:38:15:92:b9:8d:31:ee:47:a8:7d:7e:
48:d7:34:9a:45:db:fc:7f:28:39:52:a0:f0:95:0d:a3:c4:83:
55:24:0e:eb:8f:8d:e2:67:55:4d:9e:d4:5e:0d:54:50:f1:4c:
c2:88:a4:02:fa:1c:31:e5:67:61:e5:dc:85:43:a4:3c:fd:7a:
c2:74:8d:5e:a0:d5:c4:9c:b5:85:70:80:72:f0:bc:e0:ae:65:
06:12:b2:a8:2f:7e:87:5c:d8:4e:80:81:10:8f:a8:c2:ed:90:
87:52:86:71:13:4c:e1:c5:59:7e:59:23:b2:b8:a3:4c:1b:86:
80:f1:b3:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:12 2024 by rpki-client on console-fra.rpki-client.org